VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
Advisories the vendor has revised
Path traversal in configDependencies env lockfile allows symlink creation outside node_modules/.pnpm-config. Red Hat rates this important (CVSS 8.2).
patch-remove could delete project-selected files outside the patches directory. Red Hat rates this important (CVSS 7.1). Weakness: CWE-22.
Unbounded GraphQL query depth allows authenticated denial of service. Red Hat rates this important (CVSS 7.7). Weakness: CWE-400. Red Hat lists fixing advisory RHSA-2026:36319 with package advanced-cluster-security/rhacs-main-rhel8:1783357140, advanced-cluster-security/rhacs-main-rhel9:1783352589, advanced-cluster-security/rhacs-main-rhel8:1783357116.
Apache Camel JMS components: Arbitrary Exchange state injection. Red Hat rates this important (CVSS 8.1). Weakness: CWE-502.
Server-Side Request Forgery and sensitive data exposure. Red Hat rates this important (CVSS 8.2). Weakness: CWE-918.
Remote attacker can execute unintended operations via header manipulation. Red Hat rates this important (CVSS 7.5). Weakness: CWE-639.
Credential exposure and information disclosure via improper input validation of mail headers. Red Hat rates this moderate (CVSS 7.5). Weakness: CWE-918.
Apache Camel (camel-vertx-http): Remote Code Execution via Deserialization of Untrusted Data. Red Hat rates this important (CVSS 8.1). Weakness: CWE-502.
Stored Cross-Site Scripting via unescaped table header ID attributes in markdown. Red Hat rates this moderate (CVSS 6.1). Weakness: CWE-79.
Cross-site scripting via unescaped metadata title allows arbitrary code execution. Red Hat rates this moderate (CVSS 6.1). Weakness: CWE-79.
Denial of Service via crafted prompt in /v1/completions request. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-617.
Denial of Service due to excessive memory allocation via oversized audio file uploads. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-770.
Arbitrary command injection via shell metacharacters in file paths. Red Hat rates this moderate (CVSS 4.5). Weakness: CWE-78.
From CVEorg collector. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-617.
Information Disclosure via Arbitrary Server-Side File Read. Red Hat rates this moderate (CVSS 5).
NestedSecretsSettingsSource follows symlinks outside secrets_dir, enabling local file read and bypassing secrets_dir_max_size. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-22.
From CVEorg collector. Red Hat rates this moderate (CVSS 4.9).
Information disclosure via error messages containing sensitive data. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-209.
Information disclosure via error messages containing sensitive data. Red Hat rates this important (CVSS 5.3). Weakness: CWE-209.
Message redirection and injection via header manipulation. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-20.